Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/nWXAzONNXyWqA8p9OB5OgJfDmF0.roa
File: nWXAzONNXyWqA8p9OB5OgJfDmF0.roa (raw, json)
Hash identifier: kltfpmCKukWefL+TJeqWLm6PSBepFDVrgKdiOHPsCzE=
Subject key identifier: 9D:65:C0:CC:E3:4D:5F:25:AA:03:CA:7D:38:1E:4E:80:97:C3:98:5D
Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Certificate serial: C1
Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/nWXAzONNXyWqA8p9OB5OgJfDmF0.roa
Signing time: Fri 05 Jul 2024 08:15:49 +0000
ROA not before: Fri 05 Jul 2024 08:15:49 +0000
ROA not after: Fri 04 Oct 2024 07:31:42 +0000
asID: 2914
IP address blocks: 202.160.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jul 2024 10:07:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 193 (0xc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Validity
Not Before: Jul 5 08:15:49 2024 GMT
Not After : Oct 4 07:31:42 2024 GMT
Subject: CN=9D65C0CCE34D5F25AA03CA7D381E4E8097C3985D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:71:37:71:81:d3:7e:b4:6c:f6:9c:d8:8a:d8:
06:a4:f7:62:de:90:20:0b:d6:2f:5b:7e:fe:4c:3e:
e7:6e:25:97:04:34:59:18:1f:ec:fa:41:90:79:72:
19:5e:10:28:e9:16:86:e4:68:b4:dc:95:79:19:08:
b0:94:15:9e:b2:87:c6:13:4c:05:7c:83:e5:df:4f:
72:f0:62:8c:5b:8a:48:5c:69:1d:80:db:8a:7c:8e:
3d:15:e2:86:7c:6c:3e:55:a6:c1:b1:bf:33:5c:78:
4f:8c:38:62:7e:d4:7c:7e:04:dd:35:8b:42:9c:96:
ad:7a:43:3e:78:43:9d:a7:99:80:1d:36:2e:2f:33:
82:8c:6b:21:f9:e8:e8:02:45:83:92:00:c7:cd:13:
70:96:4f:a5:ba:5d:73:48:7d:6a:a4:78:3c:fe:c3:
af:49:fe:cf:ee:2c:53:38:8e:98:96:4b:c7:b9:af:
13:3d:4e:e8:62:80:ba:bd:27:dd:92:3a:18:ce:f1:
16:d7:f9:49:ee:61:69:a7:da:18:35:b1:20:ca:39:
a2:82:34:df:62:9f:03:03:c0:b4:50:0a:9c:ca:18:
ba:7e:6a:e9:a0:b0:b9:0a:3c:56:04:c5:5d:7b:23:
46:83:0f:6c:0f:e7:8c:76:ac:94:08:fd:17:bd:5e:
e2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:65:C0:CC:E3:4D:5F:25:AA:03:CA:7D:38:1E:4E:80:97:C3:98:5D
X509v3 Authority Key Identifier:
keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/nWXAzONNXyWqA8p9OB5OgJfDmF0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.160.72.0/21
Signature Algorithm: sha256WithRSAEncryption
80:6a:62:a1:bc:90:a5:0c:4a:c6:48:c5:58:48:31:7e:d7:b6:
fe:85:ff:d6:65:a7:93:4c:7f:f2:33:96:aa:60:b9:44:2f:a6:
63:c0:0c:b9:3c:44:1d:8c:dd:c1:ec:ea:10:4e:28:cb:85:d4:
58:a6:48:13:c3:f2:8f:c9:6d:7d:03:05:76:a8:1f:e2:71:53:
fa:ee:a8:3a:41:28:ed:d7:32:22:92:fa:19:5e:4a:c0:4d:e2:
b4:47:c3:a6:3e:77:ae:a1:f9:65:ae:cb:f5:3c:f7:1a:bd:55:
f4:74:31:3b:86:15:79:94:db:1d:b8:c2:68:c9:6b:0b:b2:9c:
4e:19:55:2d:23:b4:62:61:ba:36:51:0f:f7:0f:15:68:3c:59:
ec:b0:1c:95:eb:6a:fa:75:c2:da:5b:eb:c1:16:39:b6:af:99:
cf:e5:99:cc:d0:de:e1:07:69:e0:85:79:50:4a:8f:82:8a:9a:
4f:00:34:0d:d0:62:12:70:80:80:07:e8:d6:f1:93:89:bd:b2:
74:2c:c1:e2:1e:f5:3b:57:18:38:9a:ff:00:44:4e:6f:ba:74:
25:00:6b:f8:ee:30:8d:3b:67:a3:68:2f:7e:5a:5a:79:c8:46:
71:24:5d:ad:b0:7c:5b:92:91:ad:6f:42:a6:d1:20:cf:ae:a7:
45:c7:0f:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 10 12:35:04 2024 by rpki-client on console-ams.rpki-client.org